[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.

To: "Yang Z Zhang" <yang.z.zhang@xxxxxxxxx>
From: "Jan Beulich" <JBeulich@xxxxxxxx>
Date: Mon, 24 Mar 2014 07:25:43 +0000
Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, "gordan@xxxxxxxxxx" <gordan@xxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxx>
Delivery-date: Mon, 24 Mar 2014 07:26:34 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

>>> On 24.03.14 at 03:37, <yang.z.zhang@xxxxxxxxx> wrote:
> Jan Beulich wrote on 2014-03-20:
>>>>> On 20.03.14 at 01:48, "Zhang, Yang Z" <yang.z.zhang@xxxxxxxxx> wrote:
>>> fake a device is a solution. But I am thinking (maybe I am wrong) why
>>> not setup all VT-d entries under a bridge if passing a PCI device under
>>> a bridge. Because when passing a PCI device under a bridge, all devices
>>> under bridge should be assigned to the guest too. What current Xen dose
>>> is only set the entry which has device, so why not extend it to setup
>>> all entries? In this case, there is no user input is required.
>> 
>> You'd have to prove that this doesn't impact isolation/security.
> 
> Yes, this need more deeply think. 
> 
> BTW, do you see any potential issue with doing this?

Not a concrete one - I simply think that security/isolation guarantees
are easier to validate if permissions for a guest are kept to the smallest
possible set. So without full proof of the security of above concept I
think we should accept the new behavior only as an opt-in (via
command line or domain config option).

Jan


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

References:
- [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Konrad Rzeszutek Wilk
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Andrew Cooper
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Konrad Rzeszutek Wilk
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Zhang, Yang Z
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Konrad Rzeszutek Wilk
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Zhang, Yang Z
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Konrad Rzeszutek Wilk
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Zhang, Yang Z
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Konrad Rzeszutek Wilk
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Jan Beulich
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Zhang, Yang Z
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Jan Beulich
- Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
  - From: Zhang, Yang Z

Prev by Date: Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
Next by Date: Re: [Xen-devel] [PATCH RFC] xen/public/ring.h: simplify RING_HAS_UNCONSUMED_REQUESTS()
Previous by thread: Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
Next by thread: Re: [Xen-devel] Dealing with non-existent BDF devices in VT-d and in the hardware.
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.